CVE-2026-2066 | UTT 进取 520W 1.7.7-180627 formIpGroupConfig strcpy groupName buffer overflow

Inserito da Angelo Barbosa | Feb 6, 2026 | CVE

A vulnerability categorized as critical has been discovered in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the file /goform/formIpGroupConfig. Executing a manipulation of the argument groupName can lead to buffer overflow.

This vulnerability is tracked as CVE-2026-2066. The attack can be launched remotely. Moreover, an exploit is present.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2026-2066 | UTT 进取 520W 1.7.7-180627 formIpGroupConfig strcpy groupName buffer overflow

Post correlati

CVE-2024-33060 | Qualcomm Snapdragon Auto up to SM use after free

CVE-2023-6029 | EazyDocs Plugin up to 2.3.5 on WordPress cross-site request forgery

CVE-2023-6687 | Elastic Agent up to 7.17.15/8.11.2 HTTP Status Code log file

CVE-2025-8470 | SourceCodester Online Hotel Reservation System 1.0 /admin/deleteroom.php ID sql injection